Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft
File: k524p4YADCa65IN7bs2uD4q60bA.mft (raw, json)
Hash identifier: NgkyEyPPS9v0JYq/Sk7gXOhQiZ7PkfDhImy+RvElYHE=
Subject key identifier: 98:6F:6C:EA:21:79:0C:48:8F:B3:E4:D4:E6:63:1A:86:34:16:A1:32
Authority key identifier: 93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0
Certificate issuer: /CN=A91CDEB3/serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0
Certificate serial: 18B2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft
Manifest number: 1894
Signing time: Fri 28 Mar 2025 16:36:11 +0000
Manifest this update: Fri 28 Mar 2025 16:36:10 +0000
Manifest next update: Fri 04 Apr 2025 16:36:10 +0000
Files and hashes: 1: k524p4YADCa65IN7bs2uD4q60bA.crl (hash: CLN2j5vDPE9XA0b8L1UINu15WbxJ60GnaJPQ4yWZ/zY=)
2: 5705E30EFC7A11E8BFCC760AC4F9AE02.roa (hash: dkIdUkxS0d2PbrqHHzMK0XKv4nvJXGsXU3jrSo/hWKk=)
3: A6ACA298858911E88026B416C4F9AE02.roa (hash: Bm6Hg3gh1j1a80wR2XX7xwyi1WY27Wumi8LE07BcSR8=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6322 (0x18b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CDEB3
Validity
Not Before: Mar 28 16:36:10 2025 GMT
Not After : Apr 4 16:36:10 2025 GMT
Subject: CN=67e6cffa-e6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:15:d7:50:5e:25:e5:96:1a:ee:4f:40:2a:cc:
08:0f:f7:a7:49:cb:9d:7c:1d:25:3d:e0:f0:65:3b:
72:1f:24:f5:fc:c8:be:55:08:8c:f7:6c:c9:6c:e0:
43:47:fd:a0:e1:91:9a:1f:29:9d:a7:ff:97:45:2f:
00:f2:93:79:16:f4:44:00:5e:df:8f:ce:90:af:b3:
7d:79:f5:19:af:a3:d2:d6:6b:42:bc:93:36:1b:09:
2c:7d:40:5f:55:4f:5f:59:ee:09:49:a9:ce:b6:b6:
fc:da:75:e3:85:68:7e:9a:93:d1:ce:87:59:db:4a:
c3:fb:c7:dc:f5:f1:ed:fe:d4:79:83:a3:3c:46:0b:
81:0f:c4:63:d0:e9:13:88:21:c2:b4:62:c8:7e:82:
64:b1:2d:39:03:d0:98:9d:4d:26:df:60:14:35:3b:
dd:f1:8a:db:fc:06:6e:15:71:eb:7f:f2:14:ac:d3:
be:14:5d:4d:e4:7f:ff:46:48:76:6c:fc:22:16:29:
1f:9e:bf:aa:e4:ea:d9:ea:2f:42:a9:8c:ba:02:6c:
80:bd:b1:63:86:cb:18:00:2b:cb:10:06:d1:1d:1d:
fd:21:3b:6a:43:b8:7f:40:9a:7e:fe:0d:2a:87:a1:
0d:1a:cc:4d:73:89:fa:12:c0:8e:9a:de:56:37:12:
c1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6F:6C:EA:21:79:0C:48:8F:B3:E4:D4:E6:63:1A:86:34:16:A1:32
X509v3 Authority Key Identifier:
keyid:93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
aa:7b:41:59:70:b0:82:e2:71:0b:cf:69:0e:fb:42:04:84:7e:
f2:6d:55:56:9e:f0:6e:e8:46:43:ee:46:70:3f:9f:85:fd:a3:
e9:17:d9:a5:09:d9:82:83:fe:0f:69:35:38:ee:b0:4d:17:5a:
65:f5:7b:a1:43:26:2c:c4:23:f9:a7:da:72:96:9d:88:69:90:
43:66:18:1b:97:9b:18:ac:6c:6d:af:13:ca:ad:bc:7f:f1:83:
19:df:e4:0b:9b:66:99:dc:bf:aa:88:65:5b:61:09:fd:9e:8e:
fe:c8:14:02:fa:c0:2a:a5:39:30:f3:ee:c3:99:99:ca:85:0e:
09:01:2e:62:ee:e7:dc:91:76:08:1a:69:f4:04:0f:f5:2e:1d:
8f:ed:e9:3e:56:6d:45:8e:49:d7:a7:0a:fd:d4:a7:aa:23:0b:
9a:da:c0:8c:6e:ad:9a:ca:89:6d:34:13:4b:35:14:51:8d:8a:
31:ed:cb:d2:86:7d:fe:48:9c:03:36:9c:09:a3:c1:09:d5:f4:
6b:82:80:23:7d:75:b9:79:d5:6e:a6:de:08:e3:ff:16:d0:3b:
0f:75:56:6a:35:84:e9:ae:88:b0:e2:03:d2:8f:82:3c:7d:18:
85:33:4b:83:e4:93:30:fb:92:11:b3:14:68:96:ea:1f:97:be:
d4:f2:84:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:30:15 2025 by rpki-client